Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/MfDwYzGRIcjWcFGNrpg3WkS_pp0.roa
File: MfDwYzGRIcjWcFGNrpg3WkS_pp0.roa (raw, json)
Hash identifier: W6ewC0jtEYPcKkybgx6Es4sGD2GAJh0EPzkYJrwNGZU=
Subject key identifier: 31:F0:F0:63:31:91:21:C8:D6:70:51:8D:AE:98:37:5A:44:BF:A6:9D
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 01856EA6BB379AA7937077AB897D84DF54A5
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/MfDwYzGRIcjWcFGNrpg3WkS_pp0.roa
Signing time: Sun 01 Jan 2023 18:44:58 +0000
ROA not before: Sun 01 Jan 2023 18:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41028
IP address blocks: 2a05:b680:7::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 15 Jul 2023 14:14:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:bb:37:9a:a7:93:70:77:ab:89:7d:84:df:54:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 1 18:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31f0f063319121c8d670518dae98375a44bfa69d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:bb:39:0f:25:34:be:6b:9a:90:7c:54:47:ce:
97:de:8f:15:0a:cf:74:60:a0:b3:3f:d1:22:05:39:
3b:2b:ab:82:b5:3a:b1:ca:70:55:dc:47:cf:62:7e:
1d:4b:af:1f:12:72:d0:b4:b9:b4:c0:d3:92:10:5f:
6c:c9:92:f2:0d:e3:66:46:b4:d2:81:8f:61:f2:da:
5b:58:88:eb:01:05:3a:ed:81:1e:36:b7:6a:3c:36:
18:d6:b4:4f:2c:28:71:a6:40:18:7a:9b:d9:a2:2a:
4b:71:28:14:86:a1:b4:f4:82:ee:d2:2a:85:0b:73:
ef:b6:7c:e6:93:77:8a:0d:bc:c4:c3:6f:6b:c6:13:
66:98:49:c9:78:26:ef:b9:f3:1a:1a:ae:91:71:eb:
3a:8c:37:6e:01:20:83:de:3e:a3:7f:17:e7:47:14:
da:bc:02:51:78:7c:dd:9e:68:43:2c:14:ff:5f:3e:
68:f8:2d:0b:f6:40:00:7a:94:e5:68:cd:5e:05:af:
7c:a0:af:6e:f1:1d:61:95:41:d6:2c:0a:21:e9:61:
e0:a0:36:a6:e9:82:bd:6c:4f:e3:36:d6:d0:06:3c:
6e:91:f1:30:23:3d:d9:41:dd:45:53:45:a9:7f:80:
c9:35:1f:2a:2d:35:67:83:99:b2:74:88:3f:af:60:
b4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:F0:F0:63:31:91:21:C8:D6:70:51:8D:AE:98:37:5A:44:BF:A6:9D
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/MfDwYzGRIcjWcFGNrpg3WkS_pp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b680:7::/48
Signature Algorithm: sha256WithRSAEncryption
5f:96:dc:b6:cb:65:c1:22:a2:46:66:6b:d0:ed:08:66:e4:a0:
60:08:ff:53:97:d3:4f:a4:d1:8d:35:d1:f2:3d:cd:8f:cd:4b:
75:62:55:0d:bd:da:bc:89:c0:3a:f3:eb:20:05:03:42:0a:d6:
36:81:5d:ed:e0:fb:76:84:e8:23:7e:c7:11:db:d7:0b:f0:15:
e6:a3:9d:ae:6d:f6:a4:a1:14:32:93:f8:ea:f8:43:2c:b7:74:
4f:cd:ef:e6:37:88:8b:10:bf:0e:b3:b6:40:46:ac:c7:f9:8d:
19:57:31:3a:03:6f:41:12:36:89:dd:e5:d5:d0:59:48:58:53:
c6:f3:d4:a1:37:fe:ed:1d:fe:7c:62:53:12:fb:92:ff:db:0f:
cf:15:e4:5a:dd:c1:2c:a6:76:79:ab:3e:65:c4:77:09:bf:f8:
9a:80:a5:ef:d0:64:8d:2c:87:9e:dd:bd:a9:0b:7c:21:c1:07:
cb:2b:58:eb:4f:a8:76:d6:ff:c4:68:50:d4:b1:4a:c3:bc:b6:
6b:93:18:dc:80:c2:f5:95:13:31:f6:2b:c0:72:0c:44:e0:29:
cc:f7:2d:06:b4:c3:07:56:5a:18:1c:9b:74:89:55:ab:85:5a:
d8:a6:f2:42:8b:14:ab:34:06:74:25:52:cd:0e:cd:8e:57:d3:
61:3c:e3:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:38 2024 by rpki-client on console-ams.rpki-client.org